Cybersecurity Funding Scanner Raises $22 Million for AI-Powered Threat Hunting The company connects AI agents to security data lakes for interactive investigations, detection engineering, and autonomous response. By Ionut Arghire | March 11, 2026 (9:16 AM ET) Flipboard Reddit Whatsapp Whatsapp Email Cybersecurity startup Scanner has announced raising $22 million in a Series A funding round led by Sequoia Capital, with additional support from CRV, Mantis VC, and angel investors. Founded in 2022, San Francisco-based Scanner helps organizations build a cloud-native security data lake for fast threat hunting and continuous detection and response. It connects to existing tools and security stack and offers a Model Context Protocol (MCP) server that connects AI agents to organizations’ data lakes to power security operations. Scanner’s solution relies on inverted indexes built at ingestion time to run scans on the data that matters. It scales up when running queries and scales down when idle, to cut costs. The AI agents, Scanner says, were designed to correlate across data sources and return smart summaries, supporting interactive investigations, detection engineering, and autonomous response workflows. According to Scanner, its solution can deliver responses in a fraction of the time required by traditional SIEM solutions because it indexes data directly where it lives and runs detections continuously on the full stream. Advertisement. Scroll to continue reading. “Security teams generate massive amounts of data but can only afford to search a fraction of it. Scanner has built a fundamentally new approach to this problem, which enables companies to move into the agentic era of cybersecurity. AI is notoriously data hungry, and Scanner is the only technology on the market today that manages security data at AI scale,” said Sequoia Capital partner Bogomil Balkansky. Related: Quantro Security Emerges From Stealth With $2.5 Million in Funding Related: Jazz Emerges From Stealth With $61M in Funding for AI-Powered DLP Related: Escape Raises $18 Million to Automate Pentesting Related: Reclaim Security Raises $20 Million to Accelerate Remediation Written By Ionut Arghire Ionut Arghire is an international correspondent for SecurityWeek. More from Ionut Arghire Adobe Patches 80 Vulnerabilities Across Eight Products SAP Patches Critical FS-QUO, NetWeaver Vulnerabilities Escape Raises $18 Million to Automate Pentesting Recent Ivanti Endpoint Manager Flaw Exploited in Attacks ClickFix Attack Uses Windows Terminal to Evade Detection Internet Infrastructure TLD .arpa Abused in Phishing Attacks Cloned AI Tool Sites Distribute Malware in ‘InstallFix’ Campaign Over 100 GitHub Repositories Distributing BoryptGrab Stealer Latest News OpenAI to Acquire AI Security Startup Promptfoo Fortinet, Ivanti, Intel Patch High-Severity Vulnerabilities How to 10x Your Vulnerability Management Program in the Agentic Era Michelin Confirms Data Breach Linked to Oracle EBS Attack Quantro Security Emerges From Stealth With $2.5 Million in Funding ‘BlackSanta’ Malware Activates EDR and AV Killer Before Detonating Payload ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Moxa, Mitsubishi Electric Microsoft Patches 83 Vulnerabilities Trending Daily Briefing Newsletter Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts. Webinar: Securing Fragile OT in an Exposed World March 10, 2026 Get a candid look at the current OT threat landscape as we move past "doom and gloom" to discuss the mechanics of modern OT exposure. Register Virtual Event: Supply Chain Security and Third-Party Risk Summit March 18, 2026 Join the event where top security experts unpack the biggest software supply chain risks. Register People on the Move Ed Jennings has been appointed President and CEO at Darktrace. Ironscales has appointed Steven Malone as CSO and Amit Bluman as SVP of Research & Development. Synack has appointed Angela Heindl-Schober Chief Marketing Officer. More People On The Move Expert Insights How to 10x Your Vulnerability Management Program in the Agentic Era The evolution of vulnerability management in the agentic era is characterized by continuous telemetry, contextual prioritization and the ultimate goal of agentic remediation. (Nadir Izrael) SIM Swaps Expose a Critical Flaw in Identity Security SIM swap attacks exploit misplaced trust in phone numbers and human processes to bypass authentication controls and seize high-value accounts. (Torsten George) Four Risks Boards Cannot Treat as Background Noise The goal isn’t about preventing every attack but about keeping the business running when attacks succeed. (Steve Durbin) How to Eliminate the Technical Debt of Insecure AI-Assisted Software Development Developers must view AI as a collaborator to be closely monitored, rather than an autonomous entity to be unleashed. Without such a mindset, crippling tech debt is inevitable. (Matias Madou) Security in the Dark: Recognizing the Signs of Hidden Information Security failures don’t always start with attackers, sometimes they start with missing truth. (Joshua Goldfarb) Flipboard Reddit Whatsapp Whatsapp Email